Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232332e302f32342d3234203d3e20383334.roa
File: 3138352e342e3232332e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: CVt+PjmlrXHr0oWJfo0bCHK59U7DmDUPvF2gry48gA8=
Subject key identifier: 3F:EA:A3:A5:5B:BC:E4:DF:14:91:15:1C:E9:B3:18:7C:F8:20:86:67
Certificate issuer: /CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Certificate serial: 09F78906A3DF1375FBA87EAAB9034F84199EDBDD
Authority key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232332e302f32342d3234203d3e20383334.roa
Signing time: Thu 17 Oct 2024 07:47:13 +0000
ROA not before: Thu 17 Oct 2024 07:42:13 +0000
ROA not after: Thu 16 Oct 2025 07:47:13 +0000
asID: 834
IP address blocks: 185.4.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Oct 2024 03:19:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:f7:89:06:a3:df:13:75:fb:a8:7e:aa:b9:03:4f:84:19:9e:db:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Validity
Not Before: Oct 17 07:42:13 2024 GMT
Not After : Oct 16 07:47:13 2025 GMT
Subject: CN=3FEAA3A55BBCE4DF1491151CE9B3187CF8208667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:04:3a:3c:1f:68:97:88:0d:7e:7b:f5:90:bb:
34:e7:20:dc:3c:90:d4:81:67:d3:90:97:d8:3d:0c:
85:3f:c9:1a:6f:25:5a:61:27:aa:fb:4d:c8:73:b3:
25:21:a4:4b:0b:55:32:23:4d:d9:8c:d6:41:02:f0:
98:f7:b5:f6:11:2f:b8:97:3d:0d:ed:e2:07:a4:30:
50:99:b8:62:02:30:27:67:41:cf:cf:54:66:df:4d:
0d:42:52:60:bc:24:8a:48:1e:d7:97:ce:5e:87:b2:
b2:d5:66:0e:9b:79:27:98:3d:7b:6b:7e:0e:86:95:
11:b6:8a:a2:49:06:18:d1:a7:d3:57:86:ec:f0:e5:
28:13:af:ab:5e:6b:ef:33:8c:9c:c2:3d:46:89:39:
8b:66:33:24:e3:cf:9e:48:9e:80:75:58:77:bc:7e:
0f:bd:45:16:e7:2b:05:6c:f1:d7:1f:0e:aa:40:74:
66:25:a7:54:a3:78:01:71:02:ad:97:45:ab:22:09:
be:e1:2e:1a:c7:9d:df:75:eb:c7:7d:0e:c2:fb:d1:
37:34:15:99:20:cd:9e:55:96:75:58:eb:18:53:30:
ea:a3:ee:22:8b:a6:f6:f4:8b:53:42:61:2a:44:54:
b2:49:bd:d4:4c:31:f8:79:74:79:22:b5:f2:19:14:
6a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:EA:A3:A5:5B:BC:E4:DF:14:91:15:1C:E9:B3:18:7C:F8:20:86:67
X509v3 Authority Key Identifier:
keyid:7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/3138352e342e3232332e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.223.0/24
Signature Algorithm: sha256WithRSAEncryption
93:7d:07:6d:cf:4c:17:2c:90:d5:af:88:98:48:8c:f3:a6:59:
13:23:be:d7:d6:f4:e9:ff:6f:bf:88:ee:33:ba:cf:00:fa:79:
3b:cd:a8:85:ad:0e:16:23:40:6c:50:b2:27:a3:7f:96:fa:cd:
9d:1c:bf:bf:f1:f9:cd:92:bf:9a:74:ba:b9:93:0e:13:c4:0d:
bf:c3:a1:ee:4e:4c:07:b8:58:a5:0b:22:dd:1a:91:60:97:a0:
79:06:ae:76:ae:72:34:0b:6c:69:0a:7f:22:98:35:4a:fd:70:
bf:85:ff:09:e2:e0:12:23:d4:45:4c:bb:4f:23:26:d7:09:e6:
61:48:ca:ad:4c:55:8a:c5:81:4b:9b:33:5b:24:3a:96:06:d4:
cf:a2:86:b0:ca:03:0f:77:96:56:ab:2d:1e:40:43:05:16:2e:
90:39:17:db:d6:0c:37:70:a2:b8:20:f7:06:24:d4:b1:ed:77:
88:98:ff:eb:2b:d8:a9:45:2d:01:1e:19:39:de:bf:45:95:46:
8a:68:c8:2c:06:73:2b:ca:0b:b2:69:83:3a:06:f6:46:c1:b3:
33:e0:7f:67:ae:5a:ce:43:f7:e9:3e:fe:b7:1b:0f:d1:30:da:
72:09:ba:e6:e6:e9:07:b4:b4:5d:29:a3:66:bb:19:50:ec:99:
b4:48:40:fc
-----BEGIN CERTIFICATE-----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Generated at Fri Oct 18 05:29:01 2024 by rpki-client on console-fra.rpki-client.org